The role involves owning the end-to-end lifecycle for ISO 27001 and SOC 2 certifications while driving control design across cloud and on-prem environments
Job Summary
The role involves owning the end-to-end lifecycle for ISO 27001 and SOC 2 certifications while driving control design across cloud and on-prem environments.
Candidates will partner with engineering teams to embed security-by-design principles into CI/CD pipelines and software development lifecycles.
The position requires leading risk assessments, internal audits, and coordinating external certification audits with a focus on continual improvement.
Matching Summary
Match Score: 85
The role involves owning the end-to-end lifecycle for ISO 27001 and SOC 2 certifications while driving control design across cloud and on-prem environments.
Skills & Requirements
Must-have
ISO 27001 ISMS leadership
SOC 2 Type I and II audit experience
Cloud and on-prem control design
Risk assessment and treatment planning
Policy framework development
Engineering partnership for security-by-design
Nice-to-have
Singapore Cyber Trust Mark experience
Data Protection Trustmark (DPTM) alignment
ISO 42001 AI Management System knowledge
CI/CD and IaC integration expertise
Executive reporting capabilities
Key Requirements
Experience with Singapore regulatory frameworks
Strong technical background in cybersecurity governance
Proven track record in compliance program maturity